Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-02-02_510442b2771ba3478d57f6a91781b895_cryptolocker

  • Size

    55KB

  • Sample

    240202-pm3vpafhbq

  • MD5

    510442b2771ba3478d57f6a91781b895

  • SHA1

    40a7b19a327eba24133aa8ad03eb43fedb7f8421

  • SHA256

    10e79959ac22729f9178e5aa339a5a8b45d7584e712d3e0cc02e611f3005e926

  • SHA512

    3a31b64c533caacf6047cb4d7d407837e556dae7efb3ed60be6d4ba583870ffce070ce43657be31488e2ecbe93be4229fb20883d4b738afcb77ef14d82784d16

  • SSDEEP

    1536:X6QFElP6n+gJQMOtEvwDpjBccD2RuoNmuBLlHU:X6a+SOtEvwDpjBrOI

Score
10/10

Malware Config

Targets

    • Target

      2024-02-02_510442b2771ba3478d57f6a91781b895_cryptolocker

    • Size

      55KB

    • MD5

      510442b2771ba3478d57f6a91781b895

    • SHA1

      40a7b19a327eba24133aa8ad03eb43fedb7f8421

    • SHA256

      10e79959ac22729f9178e5aa339a5a8b45d7584e712d3e0cc02e611f3005e926

    • SHA512

      3a31b64c533caacf6047cb4d7d407837e556dae7efb3ed60be6d4ba583870ffce070ce43657be31488e2ecbe93be4229fb20883d4b738afcb77ef14d82784d16

    • SSDEEP

      1536:X6QFElP6n+gJQMOtEvwDpjBccD2RuoNmuBLlHU:X6a+SOtEvwDpjBrOI

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks